Betterdefender

**Name of the Vulnerable Software and Affected Versions** lerry903 RuoYi version 3.4.0 **Description** An issue was discovered in the `getRememberedSerializedIdentity` function in the `CookieRememberMeManager` class, allowing remote attackers to escalate privileges. **Recommendations** For version 3.4.0, consider disabling the `getRememberedSerializedIdentity` function in the `CookieRememberMeManager` class as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.